# Vulnerability Details: # osTicket application provides a functionality to upload 'html' files # with associated formats. However, application does not properly validate # the content of file and accepts any type of files.

# Proof-of-Concept: # Uploaded shell to get reverse shell of end user for the demo purpose.